Section: .. / advisories / cert /
|
See the CERT website for more information.
|
| /// File Name: |
CA-2000-11.kerberos |
Description:
|
CERT Advisory CA-2000-11 - MIT Kerberos vulnerable to denial-of-service attacks. Several new buffer overflow vulnerabilities were found in Kerberos 4, Kerberos 5 with v4 support, KerbNet, and Cygnus Kerberos. Due to the use of static buffers, these vulnerabilities do not allow remote execution of arbitrary code.
| | Homepage: | http://www.cert.org | | File Size: | 9355 | | Last Modified: | Jun 12 18:07:45 2000 |
| MD5 Checksum: | 1e504f377be057c78ce8d432d3fced78 |
|
| /// File Name: |
CA-2000-10.ie |
Description:
|
CERT Advisory CA-2000-10 - Several flaws exist in Microsoft Internet Explorer that could allow an attacker to masquerade as a legitimate web site if the attacker can compromise the validity of certain DNS information. These problems are different from the problems reported in CERT Advisory CA-2000-05 and CERT Advisory CA-2000-08, but they have a similar impact.
| | Homepage: | http://www.cert.org | | File Size: | 10038 | | Last Modified: | Jun 6 23:30:05 2000 |
| MD5 Checksum: | 998d54720cafa23578e89d1b913a1445 |
|
| /// File Name: |
CA-2000-09.pgp |
Description:
|
CERT Advisory CA-2000-09 - Flaw in PGP 5.0 Key Generation. UNIX systems having a /dev/random device running any version of PGP 5.0 are affected. When keys are generated non-interactively and without user-added randomness, on some systems PGP v5.0 generates keys that are not random enough, allowing an attacker to predict keys and therefore recover information encrypted with that key. Additionally, an attacker may be able to forge a digital signature corresponding to a vulnerable key. CERT homepage here.
| | File Size: | 11133 | | Last Modified: | May 31 06:29:20 2000 |
| MD5 Checksum: | 8429f133ed63058392165435c075a58c |
|
| /// File Name: |
CA-2000-08.netscape |
Description:
|
CERT Advisory CA-2000-08 - Inconsistent Warning Messages in Netscape Navigator. A flaw exists in Netscape Navigator that could allow an attacker to masquerade as a legitimate web site if the attacker can compromise the validity of certain DNS information. Within one Netscape session, if a user clicks on "continue" in response to a "hostname does not match name in certificate" error, then that certificate is incorrectly validated for future use in the Netscape session, regardless of the hostname or IP address of other servers that use the certificate.
| | Homepage: | http://www.cert.org | | File Size: | 12566 | | Last Modified: | May 26 23:28:40 2000 |
| MD5 Checksum: | 4156df58e4f9c04a2d7e7b7f304881a2 |
|
| /// File Name: |
CA-2000-07.ua.activex |
Description:
|
CERT Advisory CA-2000-07 - Severe Microsoft Office 2000 UA ActiveX Control Vulnerability. Arbitrary code can be executed without any warnings by simply viewing an HTML document via a web page, newsgroup posting, or email message. Systems with Internet Explorer and Microsoft Office 2000 components are vulnerable, including Word 2000, Excel 2000, PowerPoint 2000, Access 2000, Photodraw 2000, FrontPage 2000, Project 2000, Outlook 2000, Publisher 2000, and Works 2000 Suite.
| | Homepage: | http://www.cert.org | | File Size: | 12738 | | Last Modified: | May 25 03:28:41 2000 |
| MD5 Checksum: | 740d01f4d5a95b7e71cc0a08f2958086 |
|
| /// File Name: |
CA-2000-06.kerberos |
Description:
|
CERT Advisory CA-2000-06 - Multiple Buffer Overflows in MIT Kerberos Authenticated Services. Several buffer overflow vulnerabilities exist in the Kerberos authentication software version 4, including implementations included for backwards compatibility in Kerberos 5 implementations. The most severe vulnerability allows remote intruders to gain root privileges on systems running services using Kerberos authentication. If vulnerable services are enabled on the Key Distribution Center (KDC) system, the entire Kerberos domain may be compromised. All known Kerberos 4 implementations derived from MIT sources are believed to be vulnerable. krshd has a remote root vulnerability and v4rcp and ksu have local vulnerabilities. MIT Kerberos team advisory here.
| | File Size: | 19175 | | Last Modified: | May 18 10:55:41 2000 |
| MD5 Checksum: | 6bf467d452adbcdbdb58fa9d7c7f5a0e |
|
| /// File Name: |
CA-2000-05.netscape |
Description:
|
CERT Advisory CA-2000-05 - Netscape Navigator Improperly Validates SSL Sessions. ACROS advisory included with exploit details and information. All systems running Netscape Navigator 4.72, 4.61, and 4.07 are affected.
| | Homepage: | http://www.cert.org/ | | File Size: | 23233 | | Last Modified: | May 13 04:41:17 2000 |
| MD5 Checksum: | 04fa21f7914d9e4710a5484e5b6688c4 |
|
| /// File Name: |
CA-2000-04.loveletter |
Description:
|
CA-2000-04 - The "Love Letter" worm is a malicious VBScript program which spreads in a variety of ways. As of 2:00pm EDT(GMT-4) May 4, 2000 -- the CERT Coordination Center has received reports from more than 250 individual sites indicating more than 300,000 individual systems are affected.
| | Author: | CERT | | Homepage: | http://www.cert.org/ | | File Size: | 15792 | | Last Modified: | May 5 21:00:07 2000 |
| MD5 Checksum: | 332a85ab02b9d095ef94ee3d81982c28 |
|
| /// File Name: |
CA-2000-05.dns |
Description:
|
There are continuing compromises of machines running the Domain Name System (DNS) server software that is part of BIND ("named"), including compromises of machines that are not being used as DNS Servers.
| | Homepage: | http://www.ciac.org/ciac/bulletins/k-036.shtml | | File Size: | 10978 | | Last Modified: | May 2 23:01:30 2000 |
| MD5 Checksum: | 9fc310fe57b28cf58bcd938e7be80ccd |
|
| /// File Name: |
CA-2000-03.dns |
Description:
|
CERT Advisory CA-2000-03 - Continuing Compromises of DNS servers. Many systems are vulnerable to remote root bind bugs which are increasingly being exploited. A significant number of delegates DNS servers in the in-addr.arpa tree are running outdated version of DNS software as well. CERT
| | Homepage: | http://www.cert.org | | File Size: | 7898 | | Last Modified: | Apr 27 03:01:29 2000 |
| MD5 Checksum: | 32549c6a877570f9948d9f777077df64 |
|
| /// File Name: |
IN-2000-01.htm |
Description:
|
CERT Incident Note - Windows Trinoo tool.
| | Homepage: | http://www.cert.org/ | | File Size: | 11868 | | Last Modified: | Feb 25 02:30:04 2000 |
| MD5 Checksum: | 73102bfe104e8d31c1cb5bc4a59ef904 |
|
| /// File Name: |
packet_filtering.htm |
Description:
|
CERT FAQ on which ports you should block at your firewall / router.
| | Homepage: | http://www.cert.org/tech_tips/ | | File Size: | 11089 | | Last Modified: | Feb 7 21:00:20 2000 |
| MD5 Checksum: | 5e3002575a2c4265fe9430b4898f608c |
|
| /// File Name: |
malicious_code_FAQ.html |
Description:
|
CERT/CC Malicious Web Scripts FAQ - A problem has recently been identified that can be found on a wide variety of web sites: what you receive from a web site may not be what that site meant to send. If you click on a specially designed link, the site may unknowingly send you bad data, unwanted pictures, and programs (malicious scripts) to compromise your data. The problem is not with web browsers themselves but with how web pages are constructed and how data entering and leaving web sites is validated. "Validate" means ensuring no "unintended" characters are sent back to the client.
| | Homepage: | http://www.cert.org/tech_tips/ | | File Size: | 17558 | | Last Modified: | Feb 7 21:00:20 2000 |
| MD5 Checksum: | 00055408adebcb44c3a895e806085eec |
|
| /// File Name: |
CA-2000-02.htmltags |
Description:
|
CERT Advisory CA-2000-02 - Malicious HTML Tags Embedded in Client Web Requests. A web site may inadvertently include malicious HTML tags or script in a dynamically generated page based on unvalidated input from untrustworthy sources. Users may unintentionally execute scripts written by an attacker when they follow untrusted links in web pages, mail messages, or newsgroup postings.
| | File Size: | 18957 | | Last Modified: | Feb 3 21:26:26 2000 |
| MD5 Checksum: | 1e798bbe7bbbc42c9608ea1f03b49483 |
|
| /// File Name: |
CA-2000-01.distributed |
Description:
|
CERT Advisory CA-2000-01 - Denial-of-Service Developments. A distributed denial-of-service tool called "Stacheldraht" has been discovered on multiple compromised hosts at several organizations. X-Force released a paper on trin00 and TFN. CERT DoS homepage here.
| | File Size: | 9319 | | Last Modified: | Jan 4 09:19:35 2000 |
| MD5 Checksum: | da7ed5f5bf820da50da365eabdaecace |
|
| /// File Name: |
CA-99-17.dos |
Description:
|
CERT Advisory CA-99-17 - Denial-of-Service Tools. Recently, new techniques for executing denial-of-service attacks have been made public. MacOS 9 can be abused by an intruder to generate a large volume of traffic directed at a victim in response to a small amount of traffic produced by an intruder. This allows an intruder to use MacOS 9 as a "traffic amplifier," and flood victims with traffic. A tool similar to Tribe FloodNet (TFN), called Tribe FloodNet 2K (TFN2K) was released.
| | File Size: | 11875 | | Last Modified: | Dec 31 05:34:32 1999 |
| MD5 Checksum: | c2ba50110e62d6a677fa3253ee45344e |
|
| /// File Name: |
y2k-virus.htm |
Description:
|
Year 2000 Computer Viruses and Hoaxes - List of the approximate number of reports the CERT/CC has received on viruses and hoaxes that reference Y2K. There are also links to anti-virus vendors having Y2K virus and hoax web pages.
| | File Size: | 11273 | | Last Modified: | Dec 18 08:27:32 1999 |
| MD5 Checksum: | 6df1296947e7115ebc355c8791f60c7c |
|
| /// File Name: |
y2k-cyberthreats.htm |
Description:
|
CERT Expectations During Y2K - "Cyber Infrastructure and Malicious Expectations during the Y2K Transition Period" discusses potential activities associated with Y2K and offers recommendations.
| | File Size: | 24159 | | Last Modified: | Dec 18 08:23:03 1999 |
| MD5 Checksum: | ed95f63846e32ec4e52d058c185b3f9b |
|
| /// File Name: |
Y2K_FAQ.htm |
Description:
|
CERT Y2K FAQ - Includes information to help sites determine whether a failure is Y2K related or an attack.
| | File Size: | 77824 | | Last Modified: | Dec 18 08:21:33 1999 |
| MD5 Checksum: | 4f6949935197dc418b1cf788f3a2801e |
|
| /// File Name: |
CA-99-15.rsaref |
Description:
|
Some versions of sshd1 are vulnerable to a remote buffer overflow, which can be combined with the RSAREF2 overflow, to execute arbitrary code remotely as root. Only versions of SSH compiled with RSAREF support, via the --with-rsaref option, are vulnerable to these issues. Other RSAREF2 applications are affected.
| | File Size: | 16834 | | Last Modified: | Dec 14 22:41:59 1999 |
| MD5 Checksum: | 020f4afbf4b1dc3e46bc6a7a6296281b |
|
| /// File Name: |
CA-99-14.bind |
Description:
|
Six vulnerabilities have been found in BIND, the popular domain name server from the Internet Software Consortium (ISC). One of these vulnerabilities may allow remote intruders to gain privileged access to name servers. www.cert.org
| | File Size: | 10342 | | Last Modified: | Nov 11 21:38:10 1999 |
| MD5 Checksum: | 98ae15f05b567c12daba3a7669412f0f |
|
| /// File Name: |
CA-99.13.wu-ftpd |
Description:
|
CERT Advisory CA-99-13 Multiple Vulnerabilities in WU-FTPD. Vulnerability #1: MAPPING_CHDIR Buffer Overflow, Vulnerability #2: Message File Buffer Overflow, Vulnerability #3: SITE NEWER Consumes Memory. www.cert.org
| | File Size: | 11018 | | Last Modified: | Oct 21 00:46:16 1999 |
| MD5 Checksum: | 7d55572971baaa860df87f625b3594e5 |
|
| /// File Name: |
01-README |
Description:
|
This file.
| | File Size: | 51626 | | Last Modified: | Sep 16 21:12:15 1999 |
| MD5 Checksum: | 1c4c2e4f6920afc609e9d6c1a8da3e2b |
|
| /// File Name: |
CA-99-12-amd.txt |
Description:
|
There is a buffer overflow vulnerability in the logging facility of the amd daemon.
| | File Size: | 7989 | | Last Modified: | Sep 16 20:42:09 1999 |
| MD5 Checksum: | e093f357b230d861a5ee88bfd67261ed |
|
| /// File Name: |
xterm-patch-status |
Description:
|
A status file containing vendor information relating to the xterm vulnerability described in the CA-93:17.xterm.logging.vulnerability advisory.
| | File Size: | 4357 | | Last Modified: | Sep 14 07:50:20 1999 |
| MD5 Checksum: | ec79a33b7b60cc42db93a4a91dbc48cc |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
